sessionCookie authentication method in HTTP Authorization Header

Avatar

Avatar
Validate 1
Level 1
scott-simmer
Level 1

Like

1 like

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Validate 1
Boost 1
View profile

Avatar
Validate 1
Level 1
scott-simmer
Level 1

Like

1 like

Total Posts

10 posts

Correct reply

0 solutions
Top badges earned
Validate 1
Boost 1
View profile
scott-simmer
Level 1

16-03-2021

Developing custom JSSP-based services on ACC works lovely leveraging the __sessioncookie=username/password queryString method.  However security standards have evolved and queryString based authentication is frowned upon due to potential retention in logs, etc.

 

However for single request authentication eg and avoiding soaprouter and logon() token requests for high volume transactions, we would like to understand if it is supported to resolve the sessioncookie authentication by placing it in the HTTP header instead of the queryString.

 

Thanks for any tips.

Accepted Solutions (1)

Accepted Solutions (1)

Avatar

Avatar
Contributor
MVP
Milan_Vucetic
MVP

Likes

167 likes

Total Posts

386 posts

Correct reply

135 solutions
Top badges earned
Contributor
Springboard
Shape 1
Validate 25
Validate 10
View profile

Avatar
Contributor
MVP
Milan_Vucetic
MVP

Likes

167 likes

Total Posts

386 posts

Correct reply

135 solutions
Top badges earned
Contributor
Springboard
Shape 1
Validate 25
Validate 10
View profile
Milan_Vucetic
MVP

17-03-2021

Hi @scott-simmer,

after you generate it you can put it in the header:

Milan_Vucetic_0-1615979637067.png

Adjust other options per your need and take care about validity time of your token (set in serverConf.xml)

Regards,

Milan

Answers (1)

Answers (1)

Avatar

Avatar
Give Back 50
Employee
Sukrity_Wadhwa
Employee

Likes

174 likes

Total Posts

934 posts

Correct reply

35 solutions
Top badges earned
Give Back 50
Validate 1000
Validate 500
Validate 250
Validate 100
View profile

Avatar
Give Back 50
Employee
Sukrity_Wadhwa
Employee

Likes

174 likes

Total Posts

934 posts

Correct reply

35 solutions
Top badges earned
Give Back 50
Validate 1000
Validate 500
Validate 250
Validate 100
View profile
Sukrity_Wadhwa
Employee

24-03-2021

Hi @scott-simmer,

Was the given solution helpful to resolve your query or do you still need more help here? Do let us know.

Thanks!